Home of the Mozilla Identity team
Mozilla Persona is a way to sign into websites that works with any email address.
Today, we’re happy to announce a new Persona Identity Bridge for Gmail users. This means that every Gmail user can now sign into Persona-powered websites with just a few clicks using their existing account credentials. No new password required. Check it out:
Combined with our Identity Bridge for Yahoo, Persona now natively supports more than 700,000,000 active email users. That covers roughly 60-80% of people on most North American websites.
The Gmail bridge is available now, and all Persona-enabled sites will automatically use it. You can try it right now by signing into Webmaker.
Persona remains committed to privacy: Gmail users can sign into sites with Persona, but Google can’t track which sites they sign into.
If you run a website, now is an excellent time to start using Persona. Your users are ready; what are you waiting for?
Last April we announced Identity Bridging in Persona, so… what is Identity Bridging?
Persona is designed to allow you to use your existing email address to log into any website that supports Persona. If your email provider doesn’t support Persona, Mozilla will step in and vouch for you, so long as you can verify your email address.
Traditionally, this verification was just like any other system: Mozilla would send you an email and ask you to click on the confirmation link it contained.
With Identity Bridging, Persona learned a new trick; instead of sending confirmation emails, Persona can ask you to verify your identity via your email provider’s existing OpenID or OAuth gateway.
This makes Persona a near-seamless experience for hundreds of millions of users worldwide, and site owners don’t have to change a thing to take advantage of current or future bridges; it’s all automatic.
What’s more, users still experience all of the same privacy-protecting and anti-tracking benefits of Persona.
We launched Identity Bridging with support for Yahoo Mail.
We can’t wait to show you what’s next.
Over the past year, Dirkjan Ochtman has been a consistent, constructive voice in the Persona community. His involvement has helped ensure that we stay true to Mozilla’s mission of open, transparent, and participatory innovation.
More impressively, Persona’s new
backgroundColor feature is the direct result of Dirkjan’s efforts.
We hope this interview highlights his contributions and inspires others to get involved.
From the rest of us at Mozilla, thank you.
I’m Dirkjan Ochtman, a 30-year old software developer living in Amsterdam. I work for a financial startup by day; in my free time, I contribute to a bunch of open source projects, like Mercurial, Python, Gentoo Linux and Apache CouchDB. I also started a few things of my own.
I started using Firefox almost ten years ago, and I’d been watching Mozilla before that. The Mozilla mission of an open Internet resonates with me, so I tend to try and find stuff around the edges of the project where I can help. This year, I also became a Mozilla Rep.
I find BrowserID/Persona compelling because I hate having to register on different sites and make up passwords that fit (often inane) security requirements. And you just know that many sites store passwords insecurely, leaking sensitive information when they get hacked. Persona allows me to authenticate with my email address and a single password; no more guessing which username I used. I trust Mozilla’s password storage to be much more secure than the average Internet site, and because Persona is open source, I can verify that it is.
In addition to setting up Persona sign in on a small community site I run, I’ve also implemented my own Python-based Identity Provider. This means that when I use Persona, I control my own login experience. My Identity Provider uses Google Authenticator, so now I don’t have to remember any passwords at all.
The documentation for building an Identity Provider was scattered and incomplete, so I helped improve that. From that work, I got to know some of the great people who work on Identity at Mozilla.
There has been a long-standing issue that the Persona dialog contained too much Mozilla branding and did not sufficiently emphasize the individual websites that users were signing into. There was an issue about this on Github, but I seem to remember complaints on the mailing list from even longer ago.
Of course, I prefer to use Persona over Facebook Connect or Twitter, so I decided to see if I could fix some of these issues. Luckily one of the Persona developers, Shane Tomlinson, was available to work on this at roughly the same time.
To improve the branding balance, we first de-emphasized the Persona branding. I focused on allowing websites to specify a background color for the Persona dialog. This is important because it can make the dialog feel much more “at home” on a site. We had to work out some tricks to ensure that text stayed readable regardless of the background color specified.
It was great. I had no previous experience with Node.js, but getting the application up and running was easy. I got basic
backgroundColor support working in a few hours, but it took a few nights to tweak things and write tests. Fortunately, Shane is also based in Europe, so we could easily work together. When Shane showed our work on the mailing list, response from the other developers was very positive.
It would be really great if this helps drive Persona adoption amongst large websites.
I’ll probably stay involved for the foreseeable future. Now that I know what I’m doing with the dialog, I would like to help out with further improvements to the login flow and website API. I’m also very interested in stabilization and/or standardization of the Identity Provider API.
The next time you use Persona, it might look a little different. In response to user feedback, we’ve reduced the prominence of the Mozilla brand in the login dialog and completely eliminated the big “Persona” header. This keeps the focus on individual sites, rather than the mechanism powering login.
With Persona, your site is at the forefront:
For example, to get a bright blue dialog, a site can simply call:
We owe this feature to the efforts of Dirkjan Ochtman, a Mozilla community member and open source software contributor. Next week, we’ll publish a brief interview with Dirkjan highlighting his contributions.
Over the last few days, news reports indicate that US government agencies are involved in broad surveillance of phone and Internet traffic. The exact extent of this surveillance is not fully understood. The Mozilla Identity Team joins the rest of Mozilla in calling for a thorough investigation of these surveillance activities. We also join security professionals like Bruce Schneier in highlighting the importance of transparency of surveillance activities:
Knowing how the government spies on us is important. Not only because so much of it is illegal — or, to be as charitable as possible, based on novel interpretations of the law — but because we have a right to know.
Some have called on us to move Persona servers outside the US to escape the now-revealed surveillance activity. We don’t think that would help, and even if it did a bit, we think we can be much more productive by focusing on other areas. First, it’s not clear to us that other governments have any less intrusive surveillance activities. Second, as a US company, Mozilla is subject to US Laws, wherever we host our servers. Third, we’d rather not engage in an arms-race with US government agencies. We’d rather focus on efforts to change the Law to respect user data wherever it lives.
It’s also worth pointing out that we do take certain technical measures to limit the data we collect. We’ve designed Persona so that the identity provider – including the fallback Identity Provider that we run – does not learn your browsing history. We consider that a good security practice, not specifically because of surveillance, but generally because collecting data without a user benefit just creates risk.
Mozilla will always do its utmost to serve and protect users, with a combination of technology and policy. We want to make sure the Law helps us do that. Help us by signing the petition.
Persona, Mozilla’s easy and safe way to log into your favorite websites, using any modern browser, is now in Beta 2. The goal of Persona is simple: we want to eliminate passwords on the Web. This release, packed with performance improvements and new features, brings us another big step closer to that goal. In particular, we’ve made it easy for users with existing Web accounts to log in without creating a new account or password. This brings secure login within two clicks for hundreds of millions of users worldwide, regardless of whether they’re on a desktop, tablet, or mobile phone.
We’ve recently seen a few notable sites implement Persona, including: Born This Way Foundation, Firebase and the Orion Project. These deployments highlight Persona’s simple implementation, ease of use, user-safety, and the fact that, because Persona is built by a non-profit, users – and only users – own and control their identity. Let’s show you Persona Beta 2 in action:
The most important feature of Persona Beta 2 is Identity Bridging, where users can log into Persona-supporting web sites with their existing accounts. We’re starting with yahoo.com. Try it now on our sample site 123done.org: click “Sign in”, enter your yahoo.com email address, and go!
Websites that use Persona benefit from this improvement immediately: hundreds of millions of Web users are now ready to log in with just a few clicks. Users have complete choice and a simple flow: click one login button and select your preferred email address. Identity Bridging kicks in dynamically based on the user’s chosen email address.
Twice as Fast. We know performance is important to every site, so we made our button and popup load twice as fast. We’re working on more improvements as we go.
Use your Existing Accounts. We’ve bridged yahoo.com, but of course we built an open system: any domain can now become a Persona Identity Provider so users can reuse their existing accounts on any site that uses Persona.
Built Into Firefox OS. We built in support for Firefox OS and made Persona much faster on all mobile devices. This gives Firefox OS apps an even better experience when using Persona.
Our adopters make us blush with the nice things they have to say about Persona.
Tara Tiger Brown of Born This Way Foundation commented: “Our mission at Born This Way Foundation is to promote a kinder, braver world where youth feel empowered to be themselves in a safe and supportive environment. In order to support our mission, we must keep our Born Brave Nation members’ identities and information safe. Mozilla Persona is a single sign-on online identity system that respects user privacy, very user friendly and simple to setup and maintain.”
Anant Narayanan of Firebase, makers of a scalable real-time backend that lets developers build apps fast without the hassle of managing servers, said “We added support for Persona as one of the authentication mechanisms for our Simple Login service, and we are very pleased with the result! The distributed nature of Persona and its elegant API makes it the ideal candidate for the types of apps we want people to build with Firebase.”
Ting, Tucows’s mobile phone service that makes sense, implemented Persona and said “The fact that user privacy is one of the foundations on which Persona is built means it’s the first single sign-in solution that we feel is worthy of recommendation and of implementation.”
Barry Warsaw, who runs the omnipresent GNU Mailman mailing list manager, added “GNU Mailman 3 chose Persona as our primary authentication mechanism because its email-based login system is a perfect fit for our mailing list software. All we need to identify a person is confirmation that they own their subscription address, and integrating Persona made that verification easy. Ideally, we’d like to do away with passwords altogether, and with Persona, this is now possible.”
Simon Kaegi of the Orion Project added “Persona is the simplest means of high quality authentication I’m aware of. In our UX review, Persona was clearly superior to OpenID.”
Discourse, the company rebooting online discussion forums, added Persona support to its codebase and enabled it on its own discussion site, adding “It has a very slick user experience, so we hope people try it out.”
Julius Schorzman of DailyCred, the instant CRM package for any web site, implemented Persona and remarked “We’ve seen from our internal metrics that more than 70% of users still prefer email and password authentication over social log-in like Facebook. Implementing Persona is actually easier than Facebook Connect, or any OAuth implementation we’ve seen.”
Acros Security, the third-party reviewers we brought in to audit Persona, told us “We’re quite impressed with the level of security [of Persona] and, although paranoid by design, we will be able to trust it with our own online identities.”
We’re building Persona in the same way we do everything at Mozilla: in the open, with your help and contributions. Now it’s your turn. Deploy Persona on your web site. Turn your domain into a Persona Identity Provider. Tell us what you need to make Persona even better. Want to fix it yourself? Send us a patch.
Together, in the open, we will continue to build a login system that is better: Better for users, better for web sites, and better for the Web.
UPDATE: We mistakenly attributed a quotation to the Eclipse Foundation’s Ian Skerrett. It should have been attributed to the Orion Project’s Simon Kaegi. The text above shows the correction.
You’ve probably heard about Firefox OS, Mozilla’s major effort to create a free mobile phone ecosystem using HTML5 as the one platform you need to develop rich mobile apps. You can expect Firefox OS phones in stores in South America later this year.
We could have done what every other company does: simply build Firefox OS accounts optimized for our operating system, focused purely on Mozilla. But that’s not how we do things. Our mission is to give users sovereignty over their Internet experience, to help and defend the Open Web. So we built Persona, an Identity System for the Web, and we’re iterating it to make sure it provides tremendous user and developer value while preserving real user choice. Then, we built Persona into the Firefox OS phone.
We’ve done a good bit of work to make Persona faster on slower data connections. We optimized our font delivery. We optimized our crypto library. Overall, Persona is now twice as fast now as it was a few months ago. And we’ve got more tricks up our sleeve to continue to make Persona fast.
We started by innovating on mobile, with native Persona on Firefox OS. The mobile constraints helped us focus our native implementation and make the right engineering compromises. Now, we’re taking those lessons and bringing them to Firefox on Android and Desktop. Native Persona support on all versions of Firefox is coming.
With Persona, you can log into web sites using the email address of your choice. The first time you use an email, our servers send you a confirmation link. By following that link, you confirm your identity to Persona, which then vouches for your ownership of that email address.
Of course, in the long term, Persona is meant to be distributed: email@example.com should be verified and certified by the administrators of example.com. If example.com wants to use 2-digit passwords, they can. If they want to use retinal scans powered by your webcam, they can. It’s up to them. With each domain able to customize its authentication protocol with its users, the Web becomes more secure.
Did you know that Persona supports this today?
If you own a domain, you can claim your users without asking Mozilla. Just follow the Persona Identity Provider protocol as described in our Identity Provider Guide. You can also start with the code for eyedee.me, our example Identity Provider. Just connect this code to your user database and advertise your domain as a Persona Identity Provider.
We don’t expect the world to switch over to a distributed authentication protocol overnight. In fact, we expect to be running the Persona Identity Provider, which we call the Fallback, for a long time and for a lot of users. Building new distributed protocols takes time.
That said, we’re not waiting around to make Persona capable of distributed authentication. For those users and domains who want it, Persona is already distributed. We think that’s pretty cool.
At Mozilla, we use your data only to serve you. We also work hard to minimize how much data we collect: we don’t collect data preemptively, “just in case” we need it for future features. Check out the Mozilla Privacy Principles.
As always, we welcome your questions and comments on our mailing list, or via the #MozillaPersona hash-tag on Twitter.
We were very happy to see the revamped “Log In with Google Plus” product from our friends across town: big improvements in user experience, great mobile integration, and clearer privacy controls. Still, we think Identity on the Web can be better: easier for developers, true choice and control for users.
In particular, we think login should be personal and minimal first, social later. We’re not the only ones who think so, as TechCrunch reported:
Some people don’t have Facebook or Twitter accounts. Others have deleted them to live a more “real” existence. Then there are those with social accounts, but who don’t want to give their most private data to just any developer. Their biographical info, location, interests, and the ability to post things to their friends are not things they want to give away without some vetting.
Rockmelt co-founder and CEO Vishria tells me his company learned a big lesson […]: “because of privacy implications, people want to try an app with email and then add social later if they like it.” I call this “try before you pry,” and Vishria explains “there’s a certain level of trust that builds over time.”
That’s why a login with Mozilla Persona delivers only the user’s preferred identity to the site.
We also noticed that users dislike the NASCAR-style plastering of branded login buttons. If the user recognizes none, she’s forced to use a new identity provider. If the user recognizes one, the others are distracting. If the user recognizes more than one, she’ll likely forget which one she used the first time, click another one the second time, fail to retrieve her data at the web site in question, groan, and start again.
We can do better. The user should see only options relevant to her!
With Persona, the user chooses any email address she wishes. Only the user’s own email addresses are ever displayed. When returning to a site, the last-used address is even pre-selected.
When logging in with Google Plus, users choose how much to reveal to their friends. However, users still cannot choose how much to reveal to Google: Google learns every user’s login at every site. It’s as if a hotel receptionist called up the Department of Motor Vehicles to inform them of your checkin because you provided a driver’s license as identification. A bit jarring, in our opinion.
We built the Persona protocol to reduce data sharing to the minimum needed for the user to easily log in: the browser mediates the login without leaking data to the identity provider. In the end, Persona is the easy login solution that respects users.
As always, we welcome your questions and comments on our mailing list, or via the #MozillaPersona hash-tag on Twitter.